[SERVER-10520] Add SSL cipher restriction capability Created: 15/Aug/13  Updated: 28/Jun/17  Resolved: 17/Sep/13

Status: Closed
Project: Core Server
Component/s: Security
Affects Version/s: None
Fix Version/s: 2.5.3

Type: Improvement Priority: Major - P3
Reporter: Eric Milkie Assignee: Andreas Nilsson
Resolution: Done Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Depends
is depended on by DOCS-1921 Document: Add SSL cipher restriction ... Closed
Duplicate
is duplicated by SERVER-14145 Restrict supported cipher over ssl Closed
Related
related to SERVER-6641 Ability to configure supported cipher... Closed
related to SERVER-29568 Enable configuration of OpenSSL ciphe... Closed
Backwards Compatibility: Fully Compatible
Participants:

 Description   

Need to call SSL_CTX_set_cipher_list() and pass it a list of ciphers (provided by the administrator via config). Also may want to expose SSL_get_ciphers() for debugging purposes.



 Comments   
Comment by auto [ 17/Sep/13 ]

Author:

{u'username': u'agralius', u'name': u'Andreas Nilsson', u'email': u'andreas.nilsson@10gen.com'}

Message: SERVER-10520 Disable insecure SSL ciphers
Branch: master
https://github.com/mongodb/mongo/commit/527dd9cbea88737325e12a47121e09acfeb6f1d3

Generated at Thu Feb 08 03:23:22 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.